WordPress.org

Forums

Sucuri Security - Auditing, Malware Scanner and Security Hardening
[resolved] New WP integrity check caveats (4 posts)

  1. Marcelo Pedra
    Member
    Posted 1 year ago #

    Hi, I wanted to share that the so called integrity check is considering only the core WP disto, english based. It's not autodetecting the language, thus comparing against the spanish version. I don't know if there are other official versions of WP for other languages, but I think a security suite like this should be able to detect the right one.

    Another issue: the admin user check is supposed to detect if there are plain "admin" named users? Because I use to deploy administrators like "admin-Johny" and it's filtering the "-" char, so the real username is obscured and confusing. This should be fixed. Try the checker with these usernames: harry-admin, admin-harry, admin-Harry, Harry-Admin.

    Best regards. Thank you.

    http://wordpress.org/plugins/sucuri-scanner/

  2. Daniel Cid
    Sucuri.net Support
    Plugin Author

    Posted 1 year ago #

    Good feedback! We will take a look at it.

    thanks,

  3. Daniel Cid
    Sucuri.net Support
    Plugin Author

    Posted 1 year ago #

    The first part about the language should be fixed now.

    The admin user issue we are looking at it as well.

    thanks!

  4. Yorman
    Member
    Plugin Author

    Posted 10 months ago #

    Fixed so long ago with ... WHERE user_login = 'admin';

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.